FOLLOW US

Unbound is thrilled to have passed FIPS 140-2 certification for Unbound Key Control (UKC). This significant milestone for Unbound gives us strong industry validation of our pioneering virtual HSM and key management platform in today’s digital climate. FIPS 140-2 Level 1 and Level 2 certification is also a practical gain for our present and future clients, as it assures companies that Unbound’s software-pure platform – the only one of its kind— meets NIST’s strict security standard. Unbound is the first and only company to obtainFIPS 140-2 Level 1andFIPS 140-2 Level 2 certification for a software-pure cryptographic module that spans multiple separate machines and uses secure multiparty computation (MPC) rather than relying on physical security measures to protect keys.

What are NIST and FIPS?

The National Institute of Standards and Technology (NIST) issued the FIPS (Federal Information Processing Standard (FIPS) 140 series to set standards for cryptographic models that include both hardware and software components, and this standard assures the protection of a cryptographic module within a security system that maintains confidentiality and integrity of the information protected by the module. FIPS 140-2 Level 1 and Level 2 certification is used specifically for cryptographic modules by private companies who want their products certified for use in regulated industries, such as financial and health-care sectors or government departments.

What does FIPS certification for UKC mean for you?

Unbound’s Distributed Trust Platform – the underlying technology platform on which UKC is built – leverages secure multi-party computation (MPC) for protecting keys from unauthorized access and use. Traditionally cryptographic keys exist in a single location at least at some point in their lifecycle, making

them a single point of compromise. If a key is stolen or compromised by an attacker, it can be used to decrypt sensitive data, digitally sign malware to disguise it as legitimate software, or gain illegitimate access to corporate systems, to name a few examples. Unbound’s Distributed Trust Platform splits keys into random shares placed in separate machines and uses MPC to perform cryptographic operations using the keys, so keys never exist in complete form throughout their lifecycle – not even when generated or while in use.

At Unbound, securing assets is our top priority, and with FIPS-140 validation organizations can go through their internal validation process to start realizing the benefits of

Prof. Yehuda Lindell

Yehuda Lindell is a professor of Computer Science at Bar-Ilan University, and a cryptographer with expertise in secure multiparty computation (MPC) that forms the technological core of Unbound’s solutions. Yehuda served as the Chief Scientist of Unbound from its inception until February 2019, when he took over the role as CEO.